Simon Willison’s Weblog

Subscribe

Wednesday, 28th December 2022

Reverse Prompt Engineering for Fun and (no) Profit (via) swyx pulls off some impressive prompt leak attacks to reverse engineer the new AI features that just got added to Notion. He concludes that “Prompts are like clientside JavaScript. They are shipped as part of the product, but can be reverse engineered easily, and the meaningful security attack surface area is exactly the same.”

# 8:56 pm / gpt-3, prompt-engineering, prompt-injection, swyx, generative-ai, llms

2022 » December

MTWTFSS
   1234
567891011
12131415161718
19202122232425
262728293031